Vulnerability identifier: #VU79925

Vulnerability risk: Critical

CVSSv3.1: 8.4 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:H/RL:O/RC:C]

CVE-ID: CVE-2023-38831

CWE-ID: CWE-20

Exploitation vector: Network

Exploits in database: 21

• May 13, 2024
  • CVE-2023-38831_ReverseShell_Winrar-RCE (Pasos necesarios para obtener una reverse shell explotando la vulnerabilidad de winrar CVE-2023-38831 en versiones anteriores a 6.23.) [Github]
• April 19, 2024
  • CVE-2023-38831 (CVE-2023-38831 PoC (Proof Of Concept)) [Github]
  • cve-2023-38831 (CVE-2023-38831 WinRAR) [Github]
• April 5, 2024
  • cve-2023-38831 (一款用于生成winrar程序RCE（即cve-2023-38831）的POC的工具。) [Github]
• February 27, 2024
  • CVE-2023-38831-winrar-expoit-simple-Poc (CVE-2023-38831 winrar exploit generator and get reverse shell) [Github]
• December 26, 2023
  • winDED (Exploit Development using python for CVE-2023-38831 (POC)) [Github]
• September 13, 2023
  • CVE-2023-38831-WinRAR-Exploit (Proof of concept (PoC) exploit for WinRAR vulnerability (CVE-2023-38831) vulnerability) [Github]
  • CVE-Exploit (Find CVE and Exploit ) [Github]
  • winrar-exploit-CVE-2023-38831-tool (CVE-2023-38831 zero-Day vulnerability in WinRAR exploited by cybercriminals to target traders) [Github]
  • CVE-2023-38831 (CVE-2023-38831 WinRaR Exploit Generator) [Github]
• September 8, 2023
  • WinRAR CVE-2023-38831 Exploit [Metasploit]
• September 4, 2023
  • CVE-2023-38831-winrar (CVE-2023-38831 winrar exploit builder) [Github]
  • CVE-2023-38831-winrar-exploit () [Github]
  • CVE-2023-38831_WinRAR (Steps needed to obtain a reverse shell exploiting the winrar vulnerability CVE-2023-38831 in versions prior to 6.23.) [Github]
  • WinRAR-CVE-2023-38831 (This module exploits a vulnerability in WinRAR (CVE-2023-38831). When a user opens a crafted RAR file and its embedded document, a script is executed, leading to code execution.) [Github]
  • WinrarExploit (CVE-2023-38831-WINRAR-EXPLOIT GENERATOR) [Github]
• August 31, 2023
  • CVE-2023-38831-PoC (Proof-of-Concept for CVE-2023-38831 Zero-Day vulnerability in WinRAR) [Github]
  • CVE-2023-38831 (winrar exploit 6.22 <=) [Github]
• August 29, 2023
  • CVE-2023-38831-winrar-expoit-simple-Poc (CVE-2023-38831 winrar exploit generator and get reverse shell) [Github]
• August 28, 2023
  • CVE-2023-38831-winrar-exploit (CVE-2023-38831 winrar exploit generator) [Github]
  • CVE-2023-38831-RaRCE (An easy to install and easy to run tool for generating exploit payloads for CVE-2023-38831, WinRAR RCE before versions 6.23) [Github]

Impact: Code execution

Vulnerable software:
WinRAR
Client/Desktop applications / Software for archiving

Vendor: RARLAB